Zero Trust Policy Bypass via CVE-2025-40775 in BIND DNS Servers

Описание: Researchers demonstrated how a malformed TSIG packet exploit in BIND 9.20.0–9.20.8 causes denial-of-service, exposing static Non-Human Identity credentials. These credentials bypass zero-trust security, allowing unauthorized API access. The multi-stage attack was successfully replicated in lab conditions.


#ZeroTrust #BIND #CVE202540775 #DNS #CyberSecurity #DoS #APIAccess #Vulnerability #Exploit #InfoSec #NetworkSecurity #SecurityResearch